- Governance and Compliance

The protection and assurance* of supervisory control and data acquisition (SCADA) systems throughout all phases of operations falls under the purview of asset protection and security (AP&S) specialists as part of an integrated security program. Unlike a  project, which has a start and end date, separately dedicated resources and, most importantly, a set of deliverables to hand over to business line managers, a program is ongoing and supports the business objectives of the enterprise both routinely and after a major interruption. An integrated program features all AP&S

General ................................................................................................................... 179 Governance Explained ........................................................................................... 181 Governance and Vision .......................................................................................... 182 Setting the Framework: Policy Suite as a Governance Component....................... 183 Drivers for Governance .......................................................................................... 184 Governance and Professional Associations ............................................................ 188 Governance and the Mission .................................................................................. 188 Governance and Goal-Setting ................................................................................ 190 Governance and the Supporting Policy Suite......................................................... 190

Standards ........................................................................................................... 191 Procedures and Guidelines ................................................................................ 193 Challenges to Implementing a Policy Suite ...................................................... 194

Spheres of Governance .......................................................................................... 195 Lines of Governance .............................................................................................. 196 Oversight ................................................................................................................200 Oversight Activities ................................................................................................202 Taking Action from Oversight ...............................................................................203 Conclusion .............................................................................................................204 References .............................................................................................................205

functions under the line or functional* control of a senior security official within the organization.